检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:洪璇[1] 王鹏飞 HONG Xuan;WANG Peng-Fei(College of Information,Mechanical and Electrical Engineering,Shanghai Normal University,Shanghai 201400,China)
机构地区:[1]上海师范大学信息与机电工程学院,上海201400
出 处:《计算机系统应用》2021年第11期298-303,共6页Computer Systems & Applications
摘 要:因为身份验证的过程有概率会让使用者的秘密信息暴露,导致恶意敌手可能会追踪到用户的秘密信息,并对其进行不法利用产生危害和利益损失.比如在基于SmartCard的匿名PAKA协议方案中, SmartCard遗失后便没有办法防御敌手的离线字典攻击.因此,将双线性配对操作、D-H困难和椭圆曲线运算等操作与注册和认证过程相结合,分别基于口令和智能卡进行改进设计了新方案.并将智能卡与改进的基于口令AKA方案相结合,提出了基于智能卡和口令结合的AKA协议方案,给了出安全性证明.进一步提高了基于SmartCard和密码的PAKA协议的可靠安全性.Since there is a chance to expose the user’s secret information during authentication, malicious adversaries may trace the user’s secret information and make illegal use of it, causing harm and loss of interest. For example, in the anonymous PAKA protocol based on SmartCard, there is no way to defend against the offline dictionary attack from adversaries after the SmartCard is lost. Therefore, the bilinear pairing operation, D-H difficulty and elliptic curve operation are combined with the registration and authentication, and then a new scheme is improved and designed utilizing password and smart card respectively. On the basis of the combination of a smart card with the improved password-based AKA scheme, an AKA protocol scheme relying on both the smart card and password is proposed, with the security proof given. It further improves the reliability and security of the PAKA protocol based on SmartCard and password.
关 键 词:密钥协商协议 身份验证和密钥 密码 智能卡 抗临时密钥泄漏
分 类 号:TN918.4[电子电信—通信与信息系统]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:18.116.100.166